I'm writing a function currently to fetch objects from a bucket using boto3. While connecting, I have to connect like this:
session = boto3.session.Session(
aws_access_key_id="XXXXXXXXXX",
aws_secret_access_key="YYYYYYYYYYYYYY")
or like this:
client = boto3.client('s3',aws_access_key_id="XXXXXXXXXXXX",
aws_secret_access_key="YYYYYYYYYYYYYYY"
i.e, there are only two arguments with me: aws_access_key_id and aws_secret_access_key. And using a shared credential file is not an option. Though I am able to connect without the aws_session_token, whenever I run:
for obj in first_bucket.objects.filter(Prefix="my filter"):
print(obj.key)
response = obj.key
this error is shown:
botocore.exceptions.ClientError: An error occurred (InvalidAccessKeyId) when calling the ListObjectsV2 operation: The AWS Access Key
Id you provided does not exist in our records.
When I went through the credentials documentation here and went through a few other questions on SO, there are only suggestions to use aws_session_token when other credentials are temporary. There is also mention that sessions can be created by boto3 itself and that there's no need for the programmer to handle it. In that case, why am I being forced to add a aws_session_token mandatorily when accessing objects? Is aws_session_token something that is mandatory when objects are being accessed?
